From ca40ca336818e7208b4a26f541ef03f253ca6425 Mon Sep 17 00:00:00 2001
From: lrupp <>
Date: Apr 02 2022 17:27:56 +0000
Subject: Update hiawatha to version 10.11 / rev 30 via SR 966291


https://build.opensuse.org/request/show/966291
by user lrupp + dimstar_suse

---

diff --git a/.files b/.files
index 6bb2008..7121ed5 100644
Binary files a/.files and b/.files differ
diff --git a/.rev b/.rev
index 479c177..8fe8abd 100644
--- a/.rev
+++ b/.rev
@@ -293,4 +293,12 @@ It's a new package which I'm going to maintenance.</comment>
     <comment></comment>
     <requestid>953280</requestid>
   </revision>
+  <revision rev="30" vrev="4">
+    <srcmd5>4ab8f3ebf1a36418a9b58978291da57c</srcmd5>
+    <version>10.11</version>
+    <time>1648841745</time>
+    <user>dimstar_suse</user>
+    <comment></comment>
+    <requestid>966291</requestid>
+  </revision>
 </revisionlist>
diff --git a/harden_hiawatha.service.patch b/harden_hiawatha.service.patch
index c3e5ed8..6bf3cea 100644
--- a/harden_hiawatha.service.patch
+++ b/harden_hiawatha.service.patch
@@ -9,7 +9,7 @@ Index: hiawatha-10.11/extra/debian/hiawatha.service
 +# added automatically, for details please see
 +# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
 +ProtectSystem=full
-+ProtectHome=true
++ProtectHome=read-only
 +PrivateDevices=true
 +ProtectHostname=true
 +ProtectClock=true
diff --git a/hiawatha.changes b/hiawatha.changes
index 0658e85..2ae5d4e 100644
--- a/hiawatha.changes
+++ b/hiawatha.changes
@@ -1,4 +1,10 @@
 -------------------------------------------------------------------
+Fri Feb 11 08:22:15 UTC 2022 - Johannes Segitz <jsegitz@suse.com>
+
+- Allow read only access with ProtectHome=read-only to enable UserWebsites=yes
+  Modified harden_hiawatha.service.patch and hiawatha.service
+
+-------------------------------------------------------------------
 Wed Sep 22 08:03:45 UTC 2021 - Johannes Segitz <jsegitz@suse.com>
 
 - Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
diff --git a/hiawatha.service b/hiawatha.service
index c220abf..7910528 100644
--- a/hiawatha.service
+++ b/hiawatha.service
@@ -6,7 +6,7 @@ After=network.target
 # added automatically, for details please see
 # https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
 ProtectSystem=full
-ProtectHome=true
+ProtectHome=read-only
 PrivateDevices=true
 ProtectHostname=true
 ProtectClock=true
diff --git a/hiawatha.spec b/hiawatha.spec
index 5c11eb6..8c61572 100644
--- a/hiawatha.spec
+++ b/hiawatha.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package hiawatha
 #
-# Copyright (c) 2020 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
 # Copyright (c) 2013-2020 Mariusz Fik <fisiu@opensuse.org>.
 #
 # All modifications and additions to the file contributed by third parties
@@ -32,7 +32,7 @@ Source1:        %{name}.logrotate
 Source2:        %{name}.service
 Source102:      %{name}.firewalld
 Source103:      %{name}-ssl.firewalld
-Patch0:	harden_hiawatha.service.patch
+Patch0:         harden_hiawatha.service.patch
 BuildRequires:  cmake >= 3.0
 BuildRequires:  firewall-macros
 BuildRequires:  gcc-c++